신뢰할 수 있는 디바이스 관리

신뢰할 수 있는 디바이스 관리 방법 알아보기

이 가이드는 신뢰할 수 있는 디바이스 등록, 디바이스 등록 토큰 만들기, 신뢰할 수 있는 디바이스 제거와 같은 Device Trust 관리 작업 수행 방법을 안내합니다. 전제 조건 # A running Teleport Enterprise cluster. If you want to get started with Teleport, sign up for a free trial or set up a demo environment . The tctl and tsh clients. Installing `tctl` and `tsh` clients Determine the version of your Teleport cluster. The tctl and tsh clients must be at most one major version behind your Teleport cluster version. Send a GET request to the Proxy Service at /v1/webapi/find and use a JSON query tool to obtain your cluster version. Replace with the web address of your Teleport Proxy Service: $ TELEPORT_DOMAIN= $ TELEPORT_VERSION="$(curl -s https://$TELEPORT_DOMAIN/v1/webapi/find | jq -r '.server_version')" Follow the instructions for your platform to install tctl and tsh clients: To enroll a macOS device, you need: A signed and notarized tsh binary. Download the macOS tsh installer . To enroll a Windows device, you need: A device with TPM 2.0. A user with administrator privileges. This is only required during enrollment. The tsh client. Download the Windows tsh installer . To enroll a Linux device, you need: A device with TPM 2.0. A user with permissions to use the /dev/tpmrm0 device (typically done by assigning the tss group to the user). The tsh client. Install tsh for Linux . WSL users should use the Windows binary instead. Download the Windows tsh installer . To authenticate a Web UI session you need Teleport Connect Correct end-user IP propagati